GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,787
Composer 4,248
Erlang 31
GitHub Actions 21
Go 2,016
Maven 5,202
npm 3,721
NuGet 662
pip 3,400
Pub 11
RubyGems 890
Rust 852
Swift 36

Unreviewed advisories

All unreviewed 236,207

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,246 advisories

Filter by severity

Sort by

Least recently updated

IBM Cognos Controller 11.0.0 and 11.0.1 is vulnerable to malicious file upload by... Moderate Unreviewed

CVE-2024-25020 was published Dec 3, 2024

IBM Cognos Controller 11.0.0 and 11.0.1 could be vulnerable to malicious file upload by not... High Unreviewed

CVE-2024-40691 was published Dec 3, 2024

IBM Cognos Controller 11.0.0 and 11.0.1 could be vulnerable to malicious file upload by not... Moderate Unreviewed

CVE-2024-25019 was published Dec 3, 2024

The Advanced File Manager plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed

CVE-2024-11391 was published Dec 3, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in stefanbohacek Fediverse Embeds... Critical Unreviewed

CVE-2024-52476 was published Dec 2, 2024

DreamMaker from Interinfo has a Path Traversal vulnerability and does not restrict the types of... Critical Unreviewed

CVE-2024-11979 was published Nov 29, 2024

A vulnerability classified as problematic was found in Guizhou Xiaoma Technology jpress 5.1.2.... Moderate Unreviewed

CVE-2024-11971 was published Nov 29, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Pathomation allows Upload a Web... Critical Unreviewed

CVE-2024-52490 was published Nov 28, 2024

The Tumult Hype Animations plugin for WordPress is vulnerable to arbitrary file uploads due to... Critical Unreviewed

CVE-2024-11082 was published Nov 28, 2024

The File Manager Pro – Filester plugin for WordPress is vulnerable to arbitrary file uploads due... High Unreviewed

CVE-2024-8066 was published Nov 28, 2024

An authenticated arbitrary file upload vulnerability in the Documents module of SPIP v4.3.3... Moderate Unreviewed

CVE-2024-53619 was published Nov 26, 2024

The Booking calendar, Appointment Booking System plugin for WordPress is vulnerable to Stored... High Unreviewed

CVE-2024-9504 was published Nov 26, 2024

The School Management System for Wordpress plugin for WordPress is vulnerable to arbitrary file... Critical Unreviewed

CVE-2024-9659 was published Nov 23, 2024

The WPGYM - Wordpress Gym Management System plugin for WordPress is vulnerable to arbitrary file... Critical Unreviewed

CVE-2024-9942 was published Nov 23, 2024

The School Management System for Wordpress plugin for WordPress is vulnerable to arbitrary file... High Unreviewed

CVE-2024-9660 was published Nov 23, 2024

An arbitrary file upload vulnerability in ModbusMechanic v3.0 allows attackers to execute... High Unreviewed

CVE-2024-51364 was published Nov 21, 2024

HkCms <= v2.3.2.240702 is vulnerable to file upload in the getFileName method in /app/common... Critical Unreviewed

CVE-2024-52677 was published Nov 20, 2024

An arbitrary file upload vulnerability in the component /admin/friendlink_edit of DedeBIZ v6.3.0... High Unreviewed

CVE-2024-52769 was published Nov 20, 2024

File Upload vulnerability in change-image.php in Anuj Kumar's Boat Booking System version 1.0... High Unreviewed

CVE-2024-51208 was published Nov 20, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Anton Hoelstad WP Quick Setup... Critical Unreviewed

CVE-2024-52429 was published Nov 18, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Davor Zeljkovic Convert... Critical Unreviewed

CVE-2024-52397 was published Nov 17, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Wibergs Web CSV to html allows... Critical Unreviewed

CVE-2024-52406 was published Nov 17, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Bikram Joshi B-Banner Slider... Critical Unreviewed

CVE-2024-52405 was published Nov 17, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in codeSavory BasePress Migration... Critical Unreviewed

CVE-2024-52407 was published Nov 17, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Subhasis Laha Gallerio allows... Critical Unreviewed

CVE-2024-52400 was published Nov 17, 2024

Previous 1 2 3 4 5 … 89 90 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,246 advisories